Vulnerability
CVE-2024-20040
Component: WIFI
Location: FIRMWARE
In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08360153 (for MT6XXX chipsets) / WCNCR00363530 (for MT79XX chipsets); Issue ID: MSV-979.
Impact
Severity (Manufact.)
HIGH
Severity (NIST)
N/A
Severity (Android)
N/A
Chipsets
39
Devices
622
Affected Hardware
| Name | Also known as | Manufacturer |
|---|---|---|
| MT6580 | MediaTek | |
| MT6762 | Helio P22 | MediaTek |
| MT6768 | Helio P65 | MediaTek |
| MT6781 | Helio G96 | MediaTek |
| MT6789 | Helio G99 | MediaTek |
| MT6833 | Dimensity 6020 Dimensity 700 | MediaTek |
| MT6853T | Dimensity 800U | MediaTek |
| MT6873 | Dimensity 800 | MediaTek |
| MT6833 | Dimensity 6080 Dimensity 810 | MediaTek |
| MT6875 | Dimensity 820 | MediaTek |
39 of 39 row(s) shown.
Rows per page
Page 1 of 4
Information reliability
The information on this website is intended to provide information on the big picture of chipset security and measure trends within the industry. Our information is obtained from several vantage points, checked for consistency, and automatically cross-referenced. However, this process may not always yield reliable information. Do not use the information on a particular vulnerability, chipset or device to verify your individual exposure in cases where inaccuracies are inacceptable, for instance to assess risks if you are a Politically Exposed Person.
Timeline
Introduced (est):
Jan 1, 2015
Reported:
Unknown
Advisory Published:
Apr 1, 2024
CVE Published:
Apr 1, 2024
Android Patch Level:
Apr 2024
